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The Ari-calculus Modulo is a variant of the A-calculus with dependent types where -conversion is 
extended with user-defined rewrite rules. It is an expressive logical framework and has been used 
to encode logics and type systems in a shallow way. Basic properties such as subject reduction or 
uniqueness of types do not hold in general in the All-calculus Modulo. However, they hold if the 
rewrite system generated by the rewrite rules together with j3-reduction is confluent. But this is 
too restrictive. To handle the case where non confluence comes from the interference between the 
j3-reduction and rewrite rules with A-abstraction on their left-hand side, we introduce a notion of 
rewriting modulo p for the All-calculus Modulo. We prove that confluence of rewriting modulo p 
is enough to ensure subject reduction and uniqueness of types. We achieve our goal by encoding the 
All-calculus Modulo into Higher-Order Rewrite System (HRS). As a consequence, we also make the 
confluence results for HRSs available for the AH-calculus Modulo. 


1 Introduction 

The AlT-calculus Modulo is a variant of the A-calculus with dependent types (AlT-calculus or LF) 
where j3-conversion is extended with user-defined rewrite rules. Since its introduction by Cousineau 
and Dowek fSl, it has been used as a logical framework to express different logics and type systems. A 
key advantage of rewrite rules is that they allow designing shallow embeddings, that is embeddings that 
preserve the computational content of the encoded system. It has been used, for instance, to encode func¬ 
tional Pure Type Systems f8], First-Order Logic [91, Higher-Order Logic 0, the Calculus of Inductive 
Constructions [4], resolution and superposition proofs |jhi|, and the g-calculus fTl. 

The expressive power of the AlT-calculus Modulo comes at a cost: basic properties such as subject 
reduction or uniqueness of types do not hold in general. Therefore, one has to prove these properties 
for each particular set of rewrite rules considered. The usual way to do so is to prove that the rewriting 
relation generated by the rewrite rules together with j8-reduction is confluent. This entails a property 
called product compatibility (also known as IT-injectivity or injectivity of function types) which, in turn, 
implies both subject reduction and uniqueness of types. Another important consequence of confluence 
is that, together with termination, it implies the decidability of the corresponding congruence. Indeed, 
for confluent and terminating relations, checking congruence boils down to a syntactic equality check 
between normal forms. As a direct corollary, we get the decidability of type checking in the AlT-calculus 
Modulo for the corresponding rewrite relations. 

One case where confluence is easily lost is if one allows rewrite rules with A-abstractions on their 
left-hand side. For instance, consider the following rewrite rule (which reflects the mathematical equality 


D (Ax : R.Exp {f x)) ^ fMult (D (Ax : R.f x)) (Ax : R.Exp (/x)). 
This rule introduces a non-joinable critical peak when combined with j3-reduction: 
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Figure 1: The terms of the AlT-calculus Modulo 


D (Xx : R.Exp ((Xy : R.y) x)) 


f Mult (D {Xx : R.{Xy : R.y) x)) {Xx : /?.(Exp {{Xy : R.y) x))) D {Xx : /?.Exp x) 

A way to recover confluence is to consider a generalized rewriting relation where matching is done 
modulo j3-reduction. In this setting D {Xx : /?.Exp x) is reducible because it is j3-equivalent to the redex 
D {Xx : /?.Exp((Ay : R.y) x)) and, as we will see, this allows closing the critical peak. 

In this paper, we formalize the notion of rewriting modulo j3 in the context of the AfT-calculus 
Modulo. We achieve this by encoding the AfT-calculus Modulo into Nipkow’s Higher-Order Rewrite 
Systems iTHl . This encoding allows us, first, to properly define matching modulo j3 using the notion 
of higher order rewriting and, secondly, to make available, in the AfT-calculus Modulo, confluence and 
termination criteria designed for higher-order rewriting. Then we prove that the assumption of conflu¬ 
ence for the rewriting modulo jS relation can be used, in most proofs, in place of standard confluence. 
In particular this implies subject reduction (for both standard rewriting and rewriting modulo p) and 
uniqueness of types. 

The paper is organized as follows. First, we define in lSectiorT^ the AFI-calculus modulo for which 
we prove subject reduction and uniqueness of types under the assumption of product compatibility and 
we show that confluence implies this latter property. In ISection 3l we show that a naive definition of 
rewriting modulo j3 does not work in a typed setting. This leads us to use Higher-Order Rewrite Systems 
which we present in lSectioridl and in which we encode the AH-calculus Modulo in lSectiorTSl Then, we 
use this encoding to properly define rewriting modulo jS in ISection 61 and generalize the results of the 
previous sections. We discuss possible applications in ISectiorPT] before concluding in lSectiorT^ 




2 The An-Calculus Modulo 

The AH-calculus Modulo is an extension of the dependently-typed A-calculus (AH-calculus) where the 
j8-conversion is extended by user-defined rewrite rules. 


2.1 Terms 

The terms of the AH-calculus Modulo are the same as the terms of the AH-calculus. Their syntax is 


given in Figure 1 
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A ::= 0|A(x:f/) 


(Local Context) 

F ::= 0|r(£:f/) 

r(c : K) 1 r{u ^ y) \ r{u ^ V) 

(Global Context) 


Figure 2: Syntax for contexts 



Definition 2.1 (Object, Type, Kind, Term). A term is either an object, a type, a kind or the symbol Kind. 

An object is either a variable in the set Y, or an object constant in the set loo, or an application u y 
of two objects, or an abstraction Xx: A. j where A is a type and t_ is an object. 

A type is either a type constant in the set or an application U y where U is a type and y is an 
object, or an abstraction Xx : U.V where U and V are types, or a product TLc: U.V where U and V are 
types. 

A kind is either a product rix : U.K where U is a type and K is a kind or the symbol Type- 

Type and Kind are called sorts. 

The sets Y, Ioq and are assumed to be infinite and pairwise disjoint. 


Definition 2.2. A term is algebraic if it is not a variable, it is built from constants, variables and appli¬ 
cations and variables do not have arguments. 


Notation 2.1. In addition to the naming convention of Figure 1 we use A and B to denote types or kinds; 
T to denote a type, a kind or Kind; sfor Type or Kind. 

Moreover, we write tu to denote the application oft to an arbitrary number of arguments mi ,... 

Wb write u [x /v] for the usual (capture-avoiding) substitution ofx by v in u. We write A —^ Bfor TLx : A .B 
when B does not depend on x. 


2.2 Contexts 


We distinguish two kinds of context: local and global contexts. A local context is a list of typing decla¬ 


rations corresponding to variables. The syntax for contexts is given in Figure 2 


Definition 2.3 (Local Context). A local context is a list of variable declarations (variables together with 
their type). 


Following our previous work ifTTl . we give a presentation of the AFI-calculus Modulo where the 
rewrite rules are internalized in the system as part of the global context. This is a difference with earlier 
presentations |(8l where the rewrite rules lived outside the system and were typed in an external system 
(either the simply-typed calculus or the ATI-calculus). The main benefit of this approach is that the typing 
of the rewrite rules is made explicit and becomes an iterative process: rewrite rules previously added in 
the system can be used to type new ones. 


Definition 2.4. A rewrite rule is a pair of terms. We distinguish object-level rewrite rules (pairs of 
objects) from type-level rewrite rules (pairs of types). 

These are the only allowed rewrite rules. We write (u ^ v)for the rewrite rule {u,v). 

It is left-algebraic if u is algebraic and left-linear if no free variable occurs twice in u. 


Definition 2.5 (Global Context). A global context is a list of object declarations (an object constant 
together with a type), type declarations (a type constant together with a kind), object-level rewrite rules 
and type-level rewrite rules. 
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(Sort) 

F;A h Type : Kind 

(Variable) 

(x : A) G A 

F;A hx : A 

(Constant) 

(c:A) gF 

F;A h c : A 

(Application) 

F;A h t : Fix : A.B F;AI-m:A 

F;A h tn : B[x/u] 

(Abstraction) 

F;AI-A:Type F; A(x : A) h t : B B 7 ^ Kind 

F; A h Ax : A.t : ITx : A.B 

(Product) 

F;AI-A:Type F;A(x : A) h B : 5 

F;A h Fix : A.B : s 

(Conversion) 

F;Aht:A F;AhB:5' A^p^B 

F; A h f : B 

Figure 3: Typing rules for ferms in fhe AlT-calculus Modulo. 


2.3 Rewriting 

Definition 2.6 (j8 -reduction). The (5 -reduction relation —is the smallest relation on terms containing 
{Xx : A.u)v — u[x/v\, for all terms A, u and v, and closed by subterm rewriting. 

Definition 2.7 (F-reduction). Let F be a global context. The F-reduction relation —>r is the smallest 
relation on terms containing u — )t v for every rewrite rule {u ^ v) (z F, closed by substitution and by 
subtemi rewriting. 'We say that —?-r is left-algebraic (respectively left-linear) if the rewrite rules in F are 
left-algebraic (respectively left-linear). 

Notation 2.2. We write -^pr far U — > t , ^p for the congruence generated by -^p and =pY the 

congruence generated by -^pr- 

It is important to notice that these notions of reduction are defined as relations on all (untyped) 
terms. In particular, we do not require the substitutions to be well-typed. This allows defining fhe nofion 
of rewriting independenfly from fhe nofion of fyping (see below). This makes fhe sysfem closer from 
whaf we would implemenf in practice. 

Since fhe rewrife rules are eifher objecf-level or fype-level, rewrifing preserves fhe fhree synfacfic 
cafegories (objecf, type, kind). Moreover, sorts are only convertible to themselves. 


2.4 Type System 


We now give the typing rules for the AlT-calculus Modulo. We begin by the inference rules for terms, 
then for local contexts and finally for global confexfs. 


Definition 2.8 (Well-Typed Term). We say that a term t has fype A in the global context F and the local 
context A if the judgment F; A h t: A A derivable by the inference rules of Figure 3 We say that a term is 
well-fyped if such A exists. 
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(Empty Local Context) 
(Variable Declaration) 


r A 


r 0 

r;A h (7 : Type 


X ^ dom{A) 


r A(a: : C) 

Figure 4: Typing rules for local contexts 


The typing rules only differ from the usual typing rules for the AfT-calculus by the (Conversion) rule 
where the congruence is extended from j3-conversion to jSF-conversion allowing taking into account the 
rewrite rules in the global context. 


Definition 2.9 (Well -Formed Local Context). A local context A is well-formed with respect to a global 
context F if the judgment F A is derivable by the inference rules of\Figure4 


Well-formed local contexts ensure that local declarations are unique and well-typed. 

Besides the new conversion relation, the main difference between the AFl-calculus and the AIT- 
calculus Modulo is the presence of rewrite rules in global contexts. We need to take this into account 
when typing global contexts. 

A key feature of any type system is the preservation of typing by reduction: the subject reduction 
property. 


Definition 2.10 (Subject Reduction). Let T be a global context. We say that a rewriting relation —>■ 
satisfies the subject reduction property in F if for all terms tj, t 2 , T and local context A such that F A, 
F; A h tj : r and ti t 2 imply T\A\- t 2 -T. 

In the Ari-calculus Modulo, we cannot allow adding arbitrary rewrite rules in the context, if we want 
to preserve subject reduction. In particular, to prove subject reduction for the j 8 -reduction we need the 
following property: 


Definition 2.11 (Product-Compatibility). We say that a global context F satisfies the product compati¬ 
bility property (and we note PC(r)) if the following proposition is verified: 

if Tlx : Ai .Bi and Ylx : A 2 .R 2 two well-typed product types in the same well-formed local context such 
that Tlx =pY' Ux : A 2 .R 2 then A[ =| 3 p A 2 and B[ 62 - 

On the other hand, subject reduction for the F-reduction requires rewrite rules to be well-typed in the 
following sense: 


Definition 2.12 (Well-typed Rewrite Rules). 

• A rewrite rule (u ^ v) is well-typed/or a global context F if for any substitution o, well-formed 
local context A and term T, T',A\- (j{u) : T implies r;A h a(v) : T. 

• A rewrite rule is permanently well-typed/or a global context F if it is well-typed for any extension 
Fo D F that satisfies product compatibility. We write F h n ^ v when (u ^ v) is permanently 
well-typed in F. 


The notion of permanently well-typed rewrite rule makes possible to typecheck rewrite rules only 
once and not each time we make new declarations or add other rewrite rules in the context. 

We can now give the typing rules for global contexts. 


Definition 2.13 (Well-formed Global Context). A global context is well-formed if the judgment F wf is 


derivable by the inference rules of Figure 5 
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(Empty Global Context) 

0 wf 


(Object Declaration) 


r wf r;0l-f/:Type c^dom{Y) 


r(c : [/) wf 


(Type Declaration) 

Twf 

r;0h/::Kind PC(^(C:.^:)) 

C ^ dom{Y) 


r(C : K) wf 


(Rewrite Rules) 

Twf 

(v/)r h ui ^ Vi PC(r(Mi VI) 

..{Un^Vn)) 


r(Mi ^ Vi) .. . {Un ^ Vn) wf 



Figure 5: Typing rules for global contexts 



The rules (Object Declaration) and (Type Declaration) ensure that constant declarations are well- 
typed. One can remark that the premise PC(r(c : 17)) is missing in the (Object Declaration) rule. This 
is because PC(r(c :U)) can be proved from PC(r); to prove product compatibility for r(c : 17) it suffices 
to emulate the constant c by a fresh variable and use the product compatibility property of T. This cannot 
be done for type declarations since type-level variables do not exist in the ATl-calculus Modulo. The rule 
(Rewrite Rules) permits adding rewrite rules. Notice that we can add several rewrite rules at once. In 
this case, only product compatibility for the whole system is required. On the other hand, when a rewrite 
rule is added it needs to be well-typed independently from the other rules that are added at the same time. 

Well-formed global contexts satisfy subject reduction and uniqueness of types. Proofs can be found 
in the long version of this paper at the author’s webpage. 

Theorem 2.1 (Subject Reduction). Let T be a well-formed global context. Subject reduction holds for 
in r. 

Theorem 2.2 (Uniqueness of Types). Let T be a well-formed global context and let Abe a local context 
well-formed for Y. IfY,A \- t \T\ andY',A \-t\T 2 then T\ =pY T 2 . 

Remark that strong normalization of well-typed terms for the relations and is not guaranteed. 

2.5 Criteria for Product Compatibility and Well-typedness of Rewrite Rules 

We now give effective criteria for checking product compatibility and well-typedness of rewrite rules. 

The usual way to prove product compatibility is by showing the confluence of the rewrite system. 
Theorem 2.3 (Product Compatibility from Confluence). Let Y be a global context. If -^p^ is confluent 
then product compatibility holds for T. 

One could think that we can weaken the assumption of confluence requiring only confluence for 
well-typed terms. This is not a viable option since, without product compatibility, we do not know if 
reduction preserves typing (subject reduction) and if the set of well-typed terms is closed by reduction. 
Therefore, it seems unlikely to be able to prove confluence only for well-typed terms before proving the 
product compatibility property. 

The confluence of -^p^ can be obtained from the confluence of —j-p. 

Theorem 2.4 (Muller IIT 2 I ). If is left-algebraic, left-linear and confluent, then -^pj- is confluent. 

To show that a rewrite rule is well-typed, one can use the following result: 

Theorem 2.5. Let Y be a well-formed global context and {u ^v) be a rewrite rule. If u is algebraic and 
there exist A and T such that T A, dom{A) = FV{u), Y,A\- u : T and T; A h v : T then (u ^ v) is 
permanently well-typed for T. 
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2.6 Example 

As an example, we define the map function on lists of integers. We first define the type of Peano integers 
by the three successive global declarations: 

Nat : Type. 

0 : Nat. 

S : Nat —7- Nat. 

n times 
P s 

For readability, we will write n instead of 5 (5 ... (5 0)). We now define a type for lists: 

List : Type. 

Nil : List. 

Cons : Nat —5- List —)■ List. 

and the function map on lists: 

Map : (Nat —)■ Nat) —;■ List —>■ List. 

Map/Nil Nil. 

Map / (Cons hd tl) ^ Cons (/ hd) (Map / tl). 

For instance, we can use this function to add some value to the elements of a list. First, we define addi¬ 
tion: 

plus : Nat —>■ Nat —)■ Nat. 
plus 0 n ^ n. 

plus (S ni) n 2 ^ S (plus n[ n 2 ). 

Then, we have the following reduction: 

Map (plus 3) (Cons 1 (Cons 2 (Cons 3 Nil))) —Cons 4 (Cons 5 (Cons 6 Nil)). 

This global context is well-formed. Indeed, one can check that each global declaration is well- 
typed. Moreover, each time we add a rewrite rule, it verifies the hypotheses of ITheorem 2.51 and it 
preserves the confluence of the relation Therefore, the rewrite rules are permanently well-typed 

and, by ITheorem 2.31 product compatibility is always guaranteed. 


3 A Naive Definition of Rewriting Modulo jS 

As already mentioned, our goal is to give a notion of rewriting modulo j3 in the setting of AfT-calculus 
Modulo. We first exhibit the issues arising from a naive definition of this notion. 

In an untyped setting, we could define rewriting modulo j3 in this manner: ti rewrites to t 2 if, for some 
rewrite rule {u ^ v) and substitution a, g{u) =p ti and a(v) =p t 2 - This definition is not satisfactory 
for several reasons. 


It breaks subject reduction. For the rewrite rule of ISectioim taking a = {/ 1 -> Ay : f2.y} where Q. is 
some ill-typed term, we have 

D (Ax : /?.Exp x) —7- fMult (D (Ax : /?.(Ay : fl.y) x) (Ax : R.Exp ((Ay : f2.y) x))) 


and, even if D (Ax : /?.Exp x) is well-typed, its reduct is ill-typed since it contains an ill-typed subterm. 
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It may introduce free variables. In the example above, D. has no reason to be closed. 

It does not provide confluence. If we consider the following variant of the rewrite rule 

D {Xx : /?.Exp {f x)) ^ fMult (D/) {Xx : 7?.Exp {f x)) 

and take ai = {/ 1 —)• Ay : A\ .y} and CT 2 = {/Ay : A 2 .y} where Ai and A 2 are two non convertible types 
then we have: 

D (Ax : R.Exp ((Ay : R.y) x)) 

fMult (D (Ay : Ai.y)) (Ax : /?.(Exp ((Ay : Ai.y) x))) fMult (D (Ay : A 2 .y)) (Ax : /?.(Exp ((Ay : A 2 .y) x))) 
and the peak is not joinable. 

Therefore, we need to find a definition that takes care of these issues. We will achieve this using an 
embedding of All-calculus Modulo into Higher-Order Rewrite Systems. 

4 Higher-Order Rewrite Systems 

In 1991, Nipkow ifldl introduced Higher-Order Rewrite Systems (HRS) in order to lift termination and 
confluence results from first-order rewriting to rewriting over A-terms. More generally, the goal was to 
study rewriting over terms with bound variables such as programs, theorem and proofs. 

Unlike the AH-calculus Modulo, in HRSs jS-reduction and rewriting do not operate at the same 
level. Rewriting is defined as a relation between the jST]-equivalence classes of simply typed A-terms: 
the A-calculus is used as a meta-language. 

Higher-Order Rewrite Systems are based upon the (pre)terms of the simply-typed A-calculus built 
from a signature. A signature is a set of base types and a set of typed constants. A simple type is 
either a base type Z? G or an arrow A —^ B where A and B are simple types. 

Definition 4.1 (Preterm). A preterm of type A is 

• either a variable x of type A (we assume given for each simple type A an infinite number of variables 
of this type), 

• ora constant / of type A, 

• or an application t[u) where t is a preterm of type B —)■ A and u is a preterm of type B, 

• or, if A = B —C, an abstraction Ax.f where x is a variable of type B and t is a preterm of type C. 

In order to distinguish the abstraction of HRSs from the abstraction of AH-calculus Modulo, we use 
the underlined symbol A instead of A. Similarly, we write the application t{u) for HRSs (instead of tu). 

We use the abbreviation t(Mi,... ,«„) for t(Mi)... (m„). If A is a simple type, we write A^ for A and A"+^ 
for A —> A*'. 

Notice also that HRSs abstractions do not have type annotations because variables are typed. 
j 8 -reduction and 77 -expansion are defined as usual on preterms. We write t for the long jSt]- normal 
form of t. 

Definition 4.2 (Term). A term is a preterm in long firj-normal form. 




R. Saillard 


95 


Definition 4.3 (Pattern). A term t is a pattern if every free occurrence of a variable F is in a subterm of 
t of the form Fu such that u is ri-equivalent to a list of distinct bound variables. 

The crucial result about patterns (due to Miller ifTTI ') is the decidability of higher-order unification 
(unification modulo jSt]) of patterns. Moreover, if two patterns are unifiable then a most general unifier 
exisfs and is compufable. 

The nofion of rewrife rule for HRSs is fhe following: 

Definition 4.4 (Rewrite Rules). A rewrite rule is a pair of terms {I ^ r) such that I is a pattern not 
r\-equivalent to a variable, FV(r) C FV(1) and I and r have the same base type. 

The restriction to patterns for the left-hand side ensures that matching is decidable but also that, 
when it exists, the resulting substitution is unique. This way, the situation is very close to first-order (i.e. 
syntactic) matching. 

Definition 4.5 (Higher-Order Rewriting System (HRS)). A Higher-Order Rewriting System is a set R of 
rewrite rules. 

The rewrite relation —)•« is the smallest relation on terms closed by subterm rewriting such that, for 
any {I ^ r) ^ R and any well-typed substitution o, o{l) 

The standard example of an HRS is the untyped A-calculus. The signature involves a single base 
type Term and two constants: 

Lam : (Term —> Term) —Term 
App : Term —)• Term —Term 
and a single rewrite rule for j8-reduction: 

{beta) App(Lam(Ar.X(x)),T) ^X(F) 


5 An Encoding of the All-calculus Modulo into Higher-Order Rewrite 
Systems 

5.1 Encoding of Terms 

We now mimic the encoding of the untyped A-calculus as an HRS and encode the terms of the AH- 
calculus Modulo. First we specify the signature. 

Definition 5.1. The signature Sig(An) is composed of a single base type Term, the constants Type and 
Kind of atomic type Term, the constant App of type Term —)• Term —;■ Term, the constants Lam and 
Pi of type Term —(Term —Term) —Term and the constants c of type Term/or every constant 


Then we define the encoding of AH-terms. 

Definition 5.2 (Encoding of AH-term). The function . from 

XH-terms to HRS-terms in the signature 

Sig(An) is defined 

as follows.■ 


||Kind|| 

■= Kind TyP® 

:= Type 

x| 

•= X (variable of type Term) c| 

.•= c 

1 MV| 

■= App(||m||,||v||) Ar:A./| 

.•= Lam( A 1, Ar.| t ) 

rLr:A.B| 

•= Pi(||A||,Ar.||R||) 



Lemma 5.1. The function ||.|| is a bijection from the XH-terms to HRS-terms of type Term. 

Note that this is a bijection between the untyped terms of the AH-calculus Modulo and well-typed 
terms of the corresponding HRS. 
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5.2 Higher-Order Rewrite Rules 

We have faithfully eneoded the terms. The next step is to eneode the rewrite rules. The following rule 
eorresponds to j3-reduetion at the HRS level: 

(beta) App(Lam(X, Ax.T (x)),Z) Y (Z) 

We have the following eorrespondenee: 

Lemma 5.2. 

• If it h then ||ti|| ^(beta) Ik 2 ||- 

• Ift\ (beta) ti and ti,t 2 have type 'Term then ||ti||^^ Ik 2 ||^^ (where ||.||“^ is the inverse of \\.\\). 

By eneoding rewrite rules in the obvious way (translating (u > v) by (||m|| ||v||)), we would get 

a similar result for T-reduetion. But, sinee we want to ineorporate rewriting modulo j3, we proeeed 
differently. 

First, we introduee the notion of uniform terms. These are terms verifying an arity eonstraint on their 
free variables. 

Definition 5.3 (Uniform Terms). A term t is uniform for a set of variables V if all occurrences of a 
variable free in t not in V is applied to the same number of arguments. 

Now, we define an eneoding for uniform terms. 

Definition 5.4 (Eneoding of uniform terms). Let V be a set of variables and t be a term uniform in V. 
The HRS-term \\u\\v of type Term is defined as follows: 


Kind y 

.•= Kind 

Type||y 

■- Type 


.*= xifx^V (variable of type Term) 

ki V 

;= c 

Ax: A. M y 

.•= Lam(||A||y, Ax.||M||yu{ 4 ) 

fix : A.B y 

.•= Pi(||A||y, Ax.||B||yu{ 4 ) 

||xv||y 

.•= x(| V y) if X ^ U (x of type Term”+^ where n 

||Mv||y 

:= App( M y,| V y) if MV / x tv forx ^ U 


Now, we define an equivalenf of pafferns for fhe AlT-ealeulus Modulo. 

Definition 5.5 (AlT-patterns). Let Vq be a set of variables, sY be a function giving an arity to variables 
and let V = (Vbj-^/). The subset LZy of XYl-terms is defined inductively as follows: 

• if c is a constant, then c € 

• if p,q G &*y, then p q G l^y; 

• if X G Vb. then x G iB’y; 

• if p G BZy, X and y is a vector of pairwise distinct variables in Vq such that |y | = sY (x), then 
p(xy)G S^y; 

• if p G B^y, FV(A) C Vq and q G B*(ygu{x},j 2 /)> then p (Xx : A.q) G LB^y; 

A term t is a AlT-pattern if, for some arity function xB, t G 

Remark that the eneoding of a AlT-pattern as a uniform term is a pattern. 

We now define the eneoding of rewrite rules. 
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Definition 5.6 (Encoding of Rewrite Rules). Let {u ^v) be a rewrite rule such that 

• u is a XYl-pattem; 

• FV{v)cFV{u); 


• all free occurrences of a variable in u and v are applied to the same number of arguments. 

The encoding of {u ^ v) is \\u v|| = ||m ||0 ^ ||v|| 0 . 

Remark that the first assumption ensures that the left-hand side is a pattern and the third assumption 
ensures that the HRS-term is well-typed. 


Definition 5.7 (HRS(r)). Let r a global context whose rewrite rules satisfy the condition oJ \Defnition 5.6\ 
Wh write HRS(T}for the HRS {\\u v|| | {u ^ 


€ r} and HRS(^T) for HRS{r) ^^{{beta)}. 


6 Rewriting Modulo /3 

6.1 Definition 

We are now able to properly define rewriting modulo j8. As for usual rewriting, rewriting modulo j3 is 
defined on all (untyped) terms. 

Definition 6.1 (Rewriting Modulo j8). Let T be a global context. 'We say that ti rewrites to t 2 modulo p 
(written t\ — t 2 } (/’||ti|| rewrites to ||t 2 || in HRS(r). Similarly, we write ti t 2 (/’||ti|| rewrites to 
\\t2\\ inHRS(pr). 

Lemma 6.1. 

• — 

• If 1 1 —>T t 2 then t\ t 2 . 

6.2 Example 

Let us look at the example from the introduction. Now we have : 

D (Xx : R.Exp x) —f Mult (D (Xx : R.x)) (Xx : R.Exp x) 

Indeed, for a = {/1-7> Ay.y} we have 

||D (Ax : R.Exp x) II = App(D,Lain(R, Ax.App(Exp,x))) a(App(D,Lam(R, Ax.App(Exp,/(x))))) 

and 

IjfMult (D {Xx:R.x)) (Ax : R.Exp x)|| = App(fMult,App(D,Lain(/?, Ax.x)),Lain(/?,Ax.App(Exp,x))) 

='1^ a(App(fMult,App(D,Lani(/?,Ax./(x))),Lam(R,Ax.App(Exp,/(x))))) 

Therefore, the peak is now joinable. 

D (Ax : R.Exp ((Ay : R.y) x)) 


f Mult (D (Ax : R.{Xy : R.y) x)) (Ax : R.(Exp ((Ay : R.y) x))) D (Ax : R.Exp x) 


fMult (D (Ax : R.x)) (Ax : R.Exp x) 
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In fact the rewriting relation can be shown confluent ifTSl . 

6.3 Properties 

Rewriting modulo jS also preserves typing. 

Theorem 6.1 (Subject Reduction for — Let F a well-formed global context and A a local context 
well-formed for T. ^r;A h ti : T and t\ — t 2 then T\^\- t 2 '.T. 

It directly follows from the following lemma: 

Lemma 6.2. If t\ — t 2 then, for some t[ and tl^, we have t\ t[ ^2 L- Moreover, if t\ is 
well-typed then we can choose t[ such that it is well-typed in the same context. 

Proof The idea is to lift the j3-reductions that occur at the HRS level to the AlT-calculus Modulo. 
Suppose ti —t 2 - For some rewrite rule {u ^ v) and (HRS) substitution a, we have o{u) = ||ti || 
and a(v) = ||i 2 ||- We define the (AH) substitution a as follows: a{x) = ||a(x)||^^ if a(.r) has type 

Term; d{x) = Xx : A.||m||^^ if a(r) = Ar.n has type Term" —Term where the A; are arbitrary types. 
We have, at the AH level, d{u) —>r ^(v), d{u) —ti and a(v) —5-^ t 2 - If t\ is well-typed then the A,- can 
be chosen so that d{u) is also well-typed. □ 

Another consequence of this lemma is that the rewriting modulo j3 does not modify the congruence. 
Theorem 6.2. The congruence generated by is equal to ^pr- 

Proof Follows from ILemma 6.1 l and lLemma 6.21 □ 

6.4 Generalized Criteria for Product Compatibility and Well-Typedness of Rewrite Rules 

Using our new notion of rewriting modulo jS, we can generalize the criteria of ISection 2.51 
Theorem 6.3. Let F be a global context. IfHRS( ^F) is confluent, then product compatibility holds for F. 

Proof. Assume that Ilx : A\.Bi =^ 3 ^ FLc: A 2 .B 2 then, bv lTheorem 6.21 Ilx : Ai.Ri ^pp Ilr : A 2 .B 2 . By 
confluence, there exist Aq and Bq such that A\ Aq, A 2 —Aq, B\ Bq and B 2 Pq- H 
follows, bv lTheorem 6.21 that Ai =| 3 p A 2 and Bi =| 3 p B 2 . □ 

To prove the confluence of a HRS, one can use van Oostrom’s development-closed theorem ifTSl . 
ITheorem 2.5l can also be generalized to deal with AH-patterns. 

Theorem 6.4. Let F be a well-formed global context and {u ^v) be a rewrite rule. Ifu is a XFl-pattern 
and there exist A and T such that F A, FV (u) = dom{A), F,A\- u : T andF',A \- v :T then (u ^ v) 
is permanently well-typed for F. 

This theorem is a corollary of the following lemma. 

Lemma 6.3. Let F (ZF 2 be two well-formed global contexts. If t & ^dom(z)’ dom{o) = dom{A), for 
all (x : A) G £, CJ(A) = A, r;A£ \- t : T and r 2 ; A 2 L F a(t) : T 2 then T 2 =/tr 2 und, for all x G 
FV{t)Fdom{A), F 2 \A 2 F o(x) : T^forT^ =pp a{A{x)). 

Proof. We proceed by induction on f G lf^dom(z) ■ 

• if t = c is a constant, then FV{t) = 0 and, by inversion on F; AZ \-t:T, there exists a (closed term) 
A such that (c : A) G F C r 2 , T ^prA and T 2 =pr 2 Since A = CJ(A), we have cj(r) ^pr 2 Ti- 
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• lit = x ^ dom{L), then, by inversion, there exists A such that {x :A) €L,T A and T2 =/tr2 
Since A = a(A), we have o{T) =^3^2 ^2- 

• lit = p q, then, by inversion, on the one hand, F; AZ h p : FLr: A.B, r;Ar h ^ : A and T =^Y^[^/d\- 
On the other hand, r2;A2r h <y{p) : Fbc: A2.B2, r2; A2r h <y{q) : A2 and T2 =pr2 ^2[-^/ct(^)]. 

By induction hypothesis on p, we have oijlx : A.B) =j3r2 : A2.B2 and for all x E FV{p) fl 

dom{A), r2;A2 h a{x) : with =pr2 

By product-compatibility of r2, CJ(A) =pr2 ^2 and CJ(B) ^pr2 ®2- It follows that cj(r) =pr2 
a{B[x/q]) =pr2 F2[x/o{q)] =pY2 72 - 
Now, we distinguish three sub-cases: 

- either q E !^dom(z) and by induction hypothesis on q, for all x E FV{q) ndom(A), r2;A2 h 
a(x) : F, with F, =pY^ (^(A(x)). 

- Or <7 = Ax : A.^o with FV{A) E dom{L) and qo E ^dom{z{x:A)) and by induction hypothesis 
on qo, for all x E FV{qo) ndom(A), r2; A2 h a(x) : Ft with 7 ^ ^pr2 tf(A(x)). 

- Or ^ = xy with x ^ dom(L) and y C dom(L). By inversion, on the one hand, A(x) =pY Fly : 
r(y).C for C =pyA. On the other hand, F2;A2 h a(x) : Fly : r(y).C2 for C2 =/tr2 ^2- Since 

^pr2 A2, we have Fly : r(y).C2 =pr2 Hy : r(y).a(C) = a(A(x)). 

□ 


Proof of frheorem 6^ Let F2 be a well-formed extension of F. Suppose that F2; A2 h g{u) : T 2 . 

Bv ILemma 6.31 and FV{u) = dom{A), we have, for all x E dom{A), F2;A2 h a(x) : Ft for Ft =/3r2 
a(A(x)) andF2=|3r2 (y{T)- 

By induction on F;A h v : F, we deduce F2;A2 h a(v) : F3, for F3 =j3r2 ^pr2 Ti- It follows, by 
conversion, that F2;A2 h a(v) : F2. □ 


7 Applications 


7.1 Parsing and Solving Equations 


The context declarations and rewrite rules of |Figure'6 define a function to_expr which parses a function 
of type Nat to Nat into an expression of the form a*x + b (represented by the term mk.expr a b) where 
a and b are constants. The left-hand sides of the rewrite rules on to_expr are AlT-pattems. This allows 
defining to_expr by paffem mafching in a way which looks under fhe binders. 

The function solve can fhen be used fo solve fhe linear equation a*x + b = 0. The answer is eifher 
None if fhere is no solution, or All if any x is a solution or One m n if —m /(n -|- 1) is fhe only solution. 

For insfance, we have (writing One — ^ for One 1 2): 


solve (to_expr(Ax : Nat.plus x (plus x (S x)))) 
Bv lTheorem 6.3l and lTheorem 6.4l fhe global confexf of Figure 6 is well-formed. 


^rOne 


7.2 Universe Reflection 

In [1], Assaf defines a version of fhe calculus of construction with explicit universe subtyping thanks to 
an extended notion of conversion generated by a set of rewrite rules. This work can easily be adapted to 
fit in the framework of the AlT-calculus Modulo. However, the confluence of the rewrite system holds 
only for rewriting modulo p. 
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expr : 

mk_expr : 

expr_S : 

expr_S (mk_expr ab) ^ 

expr_P : 

expr_P (mk_expr a\ b\) (mk_expr 02 ^ 2 ) ^ 


to_expr : 

to_expr (Ax : Nat.O) ^ 

to_expr (Ax : Nat.S (/x)) ^ 

to_expr (Ax : Nat.x) ^ 

to_expr (Ax : Nat.plus (/x) (gx)) ^ 


expr_P (to_expr (Ax 


Type. 

Nat —7- Nat —)• expr. 

expr —expr. 

mk_expr a {S b). 

expr —expr —expr. 

mk_expr (plus ai 02 ) (plus bi ^ 2 )- 

(Nat —Nat) —>■ expr. 

mk_expr 0 0. 

expr_S (to_expr (Ax : Nat./x)). 
mk_expr (S 0) 0. 

Nat./x)) (to_expr (Ax : Nat.g x)). 


Solution 

All 

One 

None 

solve (mk_expr 0 0) 
solve (mk_expr 0 (S n)) 
solve (mk_expr {S n) m) 


Type. 

: Solution. 

: Nat —7- Nat —)• Solution. 

: Solution. 

All. 

^ None. 

^ One m n. 


Figure 6: Parsing and solving linear equations 


8 Conclusion 

We have defined a notion of rewriting modulo fd for the AfT-calculus Modulo. We achieved this by en¬ 
coding the AfT-calculus Modulo into the framework of Higher-Order Rewrite Systems. As a consequence 
we also made available for the Ari-calculus Modulo the confluence criteria designed for the HRSs (see 
for instance ITHI or |[T5l ). We proved that rewriting modulo j3 preserves typing. We generalized the 
criterion for product compatibility, by replacing the assumption of confluence by the confluence of the 
rewriting relation modulo p. We also generalized the criterion for well-typedness of rewrite rules to al¬ 
low left-hand to be ATT-pattems. These generalizations permit proving subject reduction and uniqueness 
of types for more systems. 

A natural extension of this work would be to consider rewriting modulo prj as in Higher-Order 
Rewrite Systems. This requires extending the conversion with T]-reduction. But, as remarked in lITOl 
(attributed to Nederpelt), is not confluent on untyped terms as the following example shows: 

Ay : B.y Ax : A.(Ay : B.y)x Ax : A.x 

Therefore properties such as product compatibility need to be proved another way. We leave this line of 
research for future work. 

For the AH-calculus a notion of higher-order pattern matching has been proposed lIT^ based on 
Contextual Type Theory (CTT) IT^ . This notion is similar to our. However, it is defined using the 
notion of meta-variable (which is native in CTT) instead of a translation into HRSs. 

In ||3l, Blanqui studies the termination of the combination of jS-reduction with a set of rewrite rules 
with matching modulo jSt] in the polymorphic A-calculus. His definition of rewriting modulo jSt] is 
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direct and does not use any encoding. This leads to a slightly different notion a rewriting modulo p. For 
instance, D(A : /?.Exp x) would reduce to fMult (D {Xx : R.{Xy : R.y) x)) {Xx : /?.Exp {{Xy : R.y) x)) in¬ 
stead of fMult (D {Xx : R.x)) {Xx : /?.Exp x). It would be interesting to know whether the two definitions 
are equivalent with respect to confluence. 

We implemented rewriting modulo j3 in Dedukti [51, our type-checker for the AlT-calculus Modulo. 

Acknowledgments. The author thanks very much Ali Assaf, Olivier Herman!, Pierre Jouvelot and the 
reviewers for their very careful reading and many suggestions. 
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